A security professional is analyzing the results of a network utilization report. The report includes the following information:
Which of the following servers needs further investigation?
A.
hr.dbprod.01
B.
R&D.file.srvr.01
C.
mrktg.file.srvr.02
D.
web.srvr.03
Explanation:
Why not A? There is a network utilization grow from 2,29GB to 29,97GB
1
0
web.srvr within norm
dev.web.srvr has used .39gb more
hr.dbprod has used 27.73gb more (excessive bandwidth utilization)
mrktg.file.srvr within norm
accnt.file.srvr within norm
R&D has 60% of average used in one day. (excessive bandwidth utilization)
R&D = research and development = stuff you want secure.
hr.dbprod = Non-business Related Activity – In many cases, non-core activities occurring within the business are found to be the culprit of high network utilization. Casual web surfing, Internet radio streaming, and viruses that have infected machines on the network can steal precious network resources and cause problems with critical business functions.
tbh, I would check both but would look into R&D first.
0
0
The answer is A for this question. Due to the spike in usage.
1
0